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On  Proof  Realization  of  Intuitionistic  Logic 


Sergei  N.  Artemov* 


Abstract 

In  1933  Godel  introduced  an  axiomatic  system,  currently  known  as  S4,  for  a  logic  of 
an  absolute  provability,  i.e.  not  depending  on  the  formalism  chosen  ([7]).  The  problem 
of  finding  a  fair  provability  model  for  S4  was  left  open.  The  famous  formal  provability 
predicate  which  first  appeared  in  the  Godel  Incompleteness  Theorem  does  not  do  this  job: 
the  logic  of  formal  provability  is  not  compatible  with  S4.  As  was  discovered  in  [2],  this 
defect  of  the  formal  provability  predicate  can  be  bypassed  by  replacing  hidden  quantifiers 
over  proofs  by  proof  polynomials  in  a  certain  finite  basis.  The  resulting  Logic  of  Proofs 
enjoys  a  natural  arithmetical  semantics  and  provides  an  intended  provability  model  for  S4, 
thus  answering  a  question  left  open  by  Godel  in  1933.  Proof  polynomials  give  an  intended 
semantics  for  some  other  constructions  based  on  the  concept  of  provability,  including 
intuitionistic  logic  with  its  Brouwer-Heyting-  Kolmogorov  interpretation,  A-calculus  and 
modal  A-calculus.  In  the  current  paper  we  demonstrate  how  the  intuitionistic  propositional 
logic  Int  can  be  directly  realized  by  proof  polynomials.  It  is  shown,  that  Xnt  is  complete 
with  respect  to  this  proof  realizability. 


1  Introduction 

A  functional  completeness  theorem  from  [2]  (cf.  Section  5  below)  demonstrates,  that  three 
basic  operations  on  proofs:  (application),  “+”  ( nondeterministic  choice),  and  “!”  ( proof 

checker)  constitute  a  basis  for  all  absolute  operations  on  proofs,  expressible  in  the  propositional 
language.  Along  with  proof  constants  for  proofs  of  certain  "simple  facts”,  like  propositional 
tautologies,  these  three  operations  “+”,  and  “!”  define  so  called  proof  polynomials.  Logic 
of  Proofs  (CP)  extends  a  boolean  logic  by  new  formulas  |f]F,  where  t  is  a  proof  polynomial, 
and  F  a  formula,  with  the  intended  reading  “f  is  a  proof  of  F'  (cf.  [2]). 

The  language  of  CP  has  an  exact  intended  semantics,  where  ut  is  a  proof  of  F"  is  inter¬ 
preted  as  a  corresponding  arithmetical  formula  about  the  codes  of  t  and  F.  The  completeness 
and  decidability  of  CP  was  established  in  ([2]). 

The  intuitionistic  logic  Xnt  was  supplied  ([8],  [9],  cf.[14],  [6],  [15])  with  an  informal 
Brouwer-Heyting-Kolmogorov  ( BHK)  operational  semantics  ,  which  was  given  in  terms  of 

’Center  for  Foundations  of  Intelligent  Systems,  625  Rhodes  Hall,  Cornell  University,  Ithaca  NY,  14853 
artemovOhybrid.cornell.edu.  Research  supported  by  the  ARO  under  the  MURI  program  “Integrated  Ap¬ 
proach  to  Intelligent  Systems”,  grant  number  DAA  H04-96- 1-0341. 
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logical  conditions  on  the  formulas  and  their  proofs,  e.g.  the  “implication”  clause  is  “p  proves 
A  -4  B  iffp  is  a  construction  transforming  any  proof  c  of  A  into  a  proof  p(c)  of  5”.  In  1933 
Godel  made  a  step  to  formalize  BHK  semantics  by  introducing  a  faithful  embedding  of  Int 
into  a  “natural  born”  provability  logic  <S4;  this  attempt  has  remained  incomplete,  since,  in 
turn,  54  has  lacked  the  intended  provability  semantics. 

Int  4  54  4  ? 

As  it  was  also  established  in  [2],  an  immediate  forgetful  translation  of  CP  gives  exactly  54; 
in  particular,  there  is  a  realization  algorithm  recovering  proof  polynomials  in  any  54-proof. 
So,  CP  provides  an  intended  provability  interpretation  for  the  modal  logic  54 

54  CP  t-4  Arithmetic, 

thus  completing  the  Godels  embedding  of  Int  into  54  to  the  fair  arithmetical  provability 
semantics  for  both  Int  and  54 

Int  4  54  4  CP  M-  Arithmetic. 

In  the.  current  paper  we  give  a  direct  realization  algorithm  of  Int  into  CP,  Godel  style. 
This  proof  realizability  provides  a  fair  semantics  for  Int: 

Int  1 -  F  <=>  F  is  proof  realizable. 


2  Logic  of  Proofs 

The  language  of  CP  contains 

boolean  constants  T,  _L,  sentence  variables  po, . . .,  pn, . . ., 
proof  variables  xq,  . . . ,  xn, . . .,  proof  constants  ao, . . ., an , . . ., 
boolean  connectives  -4, . . ., 
functional  symbols:  monadic  !,  binary  +  and  •, 
operator  symbol  of  the  type  [term]  (formula). 

Terms  (alias  proof  polynomials)  and  formulas  are  defined  in  a  natural  way:  a  proof  variable  and 
an  axiom  constant  is  a  term;  a  sentence  variable  and  a  boolean  constant  is  a  formula;  whenever 
s,t  are  terms  !t,  (s  +  t),  (s-t)  are  again  terms,  boolean  connectives  behave  conventionally,  and 
for  t  a  term  and  F  a  formula  [t]F  is  a  formula.  A  term  (proof  polynomial)  is  ground  if  is 
does  not  contain  variables. 

We  will  write  st  instead  of  s-t  and  skip  parentheses  when  convenient.  If  x  =  (*i, . . . ,  arn) 
and  T  =  (Ax, . . . ,  An),  then  we  will  write  [f]r  for  [a:i]Ai, . . .,  [xn]A„. 
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2.1  Definition.  System  CP.  The  axioms  are  all  formulas  of  the  form 

AO.  All  classical  tautologies  in  the  language  of  CP 
At.  [tJF  -4  F 

A2.  [t](F  -4  G)  -4  ([s]F  -4  [tsJG) 

AS.  [t}F  -4  [!tl(t]F 

A4-  [sJF  -4  [s+tJF,  [tjF  -4  [s-t-tjF 


Rules  of  inference: 


“reflexivity” 
“ application ” 
“proof  checker” 
“choice” 


ri-F,  rhF-H3 
ri-G 


for  any  formulas  F,  G,  a  set  of  formulas  T 


“ modus  ponentf ' 


_  for  any  formula  F,  and  any  constant  c 

c:F  “  necessitation” 

With  any  derivation  D  in  CP  we  associate  a  Specification  of  Constants  ( SpeC)  that  is  a 
list  [ci]Ai, . . lcn}An  of  all  formulas  introduced  in  D  by  the  necessitation  rule.  Under 
CPspeC  b  F  we  mean  “there  is  a  derivation  of  F  in  CP  with  the  specification  SpeC' . 

The  intended  understanding  of  CP  is  as  a  logic  of  operations  on  proofs,  where  |[t]F  stands 
for 

“t  is  a  proof  of  F”. 

For  the  usual  Godel  proof  predicate  Proof  (x,  y)  in  PA  there  are  primitive  recursive  functions 
from  codes  of  proofs  to  codes  of  proofs  corresponding  to  and  stands  for  a  oper¬ 

ation  on  proof  sequences  which  corresponds  to  the  modus  ponens  rule,  and  “!”  is  a  “proof 
checker”  operation,  appearing  in  the  proof  of  the  second  Godel  Incompleteness  theorem.  The 
usual  proof  predicate  has  a  natural  nondeterministic  version  PROOF(x,y)  called  standard 
nondeterministic  proof  predicate 

“ x  is  a  code  of  a  derivation  containing  a  formula  with  a  code  y” . 

PROOF  already  has  all  three  operations  of  the  £F-language:  the  operation  s  + 1  is  now  just 
a  concatenation  of  (nondeterministic)  proofs  s  and  t. 

A  logic  of  the  deterministic  proof  predicates  is  different  from  CP  and  is  described  in  [1], 

[10]. 


2.2  Comment.  System  CP  is  not  a  multimodal  logic,  since  no  single  modality  [£](•) 
satisfies  the  property  [f](p  4  5)  4  (|t]p  -4  | tjq)  in  CP.  This  makes  CP  different  from 
numerous  multimodal  logics.  However,  the  entire  variety  of  labeled  modalities  in  CP  can 
emulate  <S4([2],  cf.  Theorem  3.4). 


2.3  Comment.  The  usual  deduction  theorem  holds  for  CP\ 

r,  A  B  =>  T  I ~£p  A  -4  B. 
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2.4  Lemma.  (Substitution  lemma  for  CP).  IfT(x,p)  up  B{x,p)  for  a  propositional 
varaiable  p  and  a  proof  variable  x,  then  for  any  proof  polynomial  t  and  any  formula  F 

r (x/t,p/F)  \-jrp  B(x/t,p/F). 


Proof  is  trivial,  since  all  axioms  and  rules  of  CP  remain  axioms  and  rules  after  a  substitution. 

2.5  Lemma.  The  following  rules  are  admissible  in  CP.  Here  A,B  are  CP -formulas,  T,  A 
are  finite  sets  of  CP-formulas,  y  is  a  proof  variable,  t,  r  are  proof  polynomials,  y  and  s  are 
vectors  of  proof  variables  and  proof  polynomials  correspondingly,  “h”  means  “  h^p  ”. 

H  B 

Necessitation:  I-  PJB  for  some  ground  t; 

Lifting:  p|r,  [y]A  b  lt(y)}B  for  some  t(y); 

I\|[y]AH*]5  . 

- ; 

Stripping:  T,  A  B 

(y  does  not  occur  in  the  conclusion) 


P|r,  P(y)31g 

Abstraction:  p]I"  h  [Ay.t(y)](A  — B ) 

for  some  proof  polynomial  denoted  as  Xy.t(y) 

(y  does  not  occur  in  the  conclusion.) 

Proof.  Necessitation  is  a  special  case  of  Lifting. 

Lifting.  By  induction  on  a  proof  of  B  from  the  premises  p]r,  A.  If  B  G  [s|r,  then 
p]r,  [yJA  h  [!s,]j5  for  some  s,-  6  s.  If  B  6  A,  then  [yjjB  €  [y|A.  for  some  yj  6  y.  If  B 
is  an  axiom  AO  -  A4,  then  [cjB  is  SpeC.  If  B  is  from  A5,  i.e.  B  is  [c]A  for  some  A  from 
AO  -  A4,  then  by  A3,  h  [c]A->-  [!c][c]A,  and  |[s|r,  [y|A  1-  f!cj£.  Let  B  be  obtained  from 
C,C->B  by  modus  ponens.  Then,  by  the  induction  hypothesis,  [s|T,  [y|A  I-  Px (y)J ^ -S) 
and  [s]|r,  |y|A  h  \h{y)\C.  for  some  polynomials  tx  and  t2.  By  A2,  |[£]r,  |y|A  h 

Stripping.  From  T,  [y|A  h  {t}B  conclude  T,  [y|A  h  B.  Note  that  none  of  the  variables 
from  y  =  (yi, .  •  • ,  yn)  occurs  in  T,  A,  B.  Define  an  operation  '  on  /^-formulas:  p  =  p'  for  a 
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propositional  variable  p, '  commutes  with  boolean  connectives  and 

,  (  F',  if  s  contains  a  variable  from  y 

(ttsl  )  —  y  [sJ(F'),  otherwise. 

By  a  straightforward  induction  on  the  derivation  length  show  that  for  each  F  from  the  deriva¬ 
tion  r,  [y|A  b  B 

j  if  T,  |[y]A  I-  F  then  I\  A  b  F' 

\  if  I-  F  then  b  F' . 

In  particular,  r,  A  b  B. 

Case  1.  F  is  from  T,  [y]A.  Easy,  since  T'  =  T  and  ([ylA)'  =  A. 

Case  2.  F  is  a  propositional  axiom.  Then  F'  is  the  same  axiom. 

Case  3.  F=  ls]X-+X. 

a)  s  is  y-free.  Then  F'  =  an  axiom  Al. 

b)  s  is  not  y-free.  Then  F'  =  X'  — >X' . 

Case  4.  F  =  [sJ(X->F)  (H^-^y). 

a)  s,  r  are  both  y-free.  Then  F'  is  again  an  axiom  A2. 

b)  $  is  y-free,  r  is  not.  Then  F'  —  Js^X'— ^y^  — >•  {X'  — ^y7),  axiom  Al. 

c)  r  is  y-free,  s  is  not.  Then  F'  =  (X'-+Y')  ->  ([rjX'-J-y'),  derivable  in  CP  since 

d)  s,  r  are  both  not  y-free.  Then  F'  =  (X'— >Y')  — >  (X'—>Y'). 

Case  5.  F  =  |s]X-4  [!s](|[s]X). 

a)  s  is  y-free.  Then  F’  is  again  an  axiom  A3. 

b)  s  is  not  y-free.  Then  F'  =  X'—tX'. 

Case  6.  F  =  [s]X  — ►  |[(s-|-r)]X. 

a)  s,  r  are  both  y-free.  Then  F'  is  again  an  axiom  A4. 

b)  s  is  y-free,  r  is  not.  Then  F'  =  [sJX'— *Xr,  axiom  Al. 

c)  s  is  not  y-free.  Then  F'  =  X'— >X'. 

Case  7.  F  =  |tJX  -4-  |(s+r)]X.  Similar  to  Case  6. 

Case  8.  F  is  obtained  from  X,  X  — »•  F  by  modus  ponens.  Then  F'  is  obtained  from 
G^X'-tX'  by  the  same  rule. 

Case  9.  F  =  |[s]X  is  obtained  by  necessitation  from  X.  Then  b  X  and  b  |c]X  for  some 
constant  c.  By  the  Induction  hypothesis,  b  X'.  By  the  necessitation,  b  [sjX'. 

Note  that  this  proof  delivers  a  linear  time  algorithm  of  transforming  a  derivation  T,  [y|A  b 
into  a  derivation  T,  A  b  B. 

Abstraction.  From  [s|T,  HyjA  b  [%)]]£  by  Stripping,  get  p]I\  A  b  B,  then  by  Deduction, 
PF  b  A-*B,  and  then  use  Lifting  to  get  pjf  b  |[r|(A-)-B)  for  some  proof  polynomial  r. 


2.6  Comment.  A  polynomial  t(y)  introduced  by  the  Lifting  rule  is  nothing  but  a  protocol 
of  a  proof  of  B  from  [s|T,  [yJA.  The  same  holds  for  the  rule  of  Abstraction,  where  A y.t(y)  is 
a  protocol  of  a  proof  of  A— >B  from  |s]|r. 
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The  Stripping  rule  is  the  only  rule  in  this  list  which  does  not  introduce  a  proof  polynomial. 
Also,  the  proof  of  this  rule  does  not  look  constructive.  However,  since  CP  is  decidable  there  is 
a  (primitive  recursive)  procedure,  which  constructs  a  proof  from  the  conclusion  given  a  proof 
from  the  premise.  A  more  direct  algorithm  could  be  extracted  from  a  cut-elimination  theorem 
for  CP. 

The  Abstraction  rule  might  not  look  like  an  operation  on  proofs  either,  because  in  the 
the  process  of  constructing  A y.t(y)  from  t(y)  we  get  rid  of  the  latter  and  seemingly  construct 
Xy.t(y)  from  scratch.  However,  it  is  not  the  case.  A  polynomial  t(y)  is  a  protocol  of  a  proof  of 
B  from  [sir,  [yJA.  From  this  proof  we  get  a  proof  pjr,  Ah  B,  then  a  proof  of  A-»£  from 
[s|r.  Finally,  Ay.f(y)  is  a  protocol  of  the  latter  proof.  All  the  procedures  from  this  chain  of 
transformations  leading  from  t(y)  to  A y.t(y)  are  constructive. 


3  Realization  of  <54  by  proof  polynomials  . 


3.1  Example.  54  h  (QAADB)  -4  O(AAB).  In  CP  this  can  be  reproduced  by  the  following: 

1.  [c|(A  -4  (B  -4  AAB)),  by  necessitation 

2.  [x]A  -4  [cx](.B  -4  AAB),  from  1  and  A2 

3.  [x] A  -4  ([y]B  -4  [(cx)y](AAB)),  from  2  and  A2 

4.  [x]A  A  [yJB  -4  [(cx)yJ(AAB)  from  3  by  propositional  logic. 

Here  the  specification  of  constants  SpeC  consist  of  1  only. 


3.2  Example.  54  I-  (DAVOS)  -4  D(AvB).  In  CP  the  corresponding  derivation  is 

1.  [a](A  -4  AVB),  by  necessitation 

2.  [6](H  -4  AVB),  by  necessitation 

3.  [x]A  -4  [ax](AVfi),  from  1  and  A2 

4.  {y}B  -4  |6j/l(AVB),  from  2  and  A2 

5.  [x|A  -4  [ax+6y]|(AVB),  [j/JB  -4  [ax+6j/l(AvB)  by  A4  from  3,  4. 

6.  [xJA  V  \y\B  -4  lax+by}(A\/B),  from  5  by  propositional  logic 

Here  the  specification  of  constants  consists  of  1  and  2. 

The  fundamental  fact  about  54  is  that,  all  54-theorems  have  a  corresponding  dynamic  reading 
in  CP. 

3.3  Definition.  By  an  CP-realization  r  =  r(SpeC)  of  a  modal  formula  F  we  mean 

1.  an  assignment  of  proof  polynomials  to  all  occurrences  of  the  modality  in  F, 

2.  a  choice  of  a  specification  of  constants  SpeC ; 
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Under  Fr  we  denote  the  image  of  F  under  a  realization  r.  Positive  and  negative  occurrences 
of  modality  in  a  formula  and  a  sequent  are  defined  in  the  usual  way.  A  realization  r  is  normal 
if  all  negative  occurrences  of  □  are  realized  by  proof  variables. 


3.4  Theorem.  ([2])  If  S A  b  F,  then  CPsPeC  1"  Fr  for  some  specification  of  constants  SpeC 
and  some  normal  realization  r  =  r(SpeC). 

The  proof  describes  an  algorithm  which  for  a  given  cut-free  derivation  T  in  <S4  assigns  proof 
polynomials  to  all  occurrences  of  the  modality  in  T" . 

3.5  Corollary. 

<S4  b  F  CV  b  Fr  for  some  realization  r. 


4  Arithmetical  Semantics  of  proof  polynomials 

We  use  a  new  functional  symbol  iz(p(z)  for  any  arithmetical  formula  (p(z)  and  assume  that 
t-terms  could  be  eliminated  in  the  usual  way  by  using  the  small  scope  convention  (cf.  [5]). 
An  arithmetical  formula  <p  is  provably  Ai  iff  both  <p  and  — are  provably  Si.  A  term  izip  is 
provably  recursive  iff  is  provably  Si.  Closed  recursive  term  is  a  provably  total  and  provably 
recursive  term  izip  such  that  tp  contains  no  free  variables  other  than  z. 

Close  recursive  terms  represent  all  provably  recursive  names  for  natural  numbers. 

We  have  to  use  all  of  them  as  proof  realizers,  since  some  operations  on  proofs, 
e.g.  the  proof  checker  depend  on  the  name  of  the  argument,  not  on  its  value. 
Indeed,  if  PROOF(n,k)  holds,  then  PROOF  (n  +  0,  k)  also  holds,  !(n)  is  a  proof 
of  PROOF(n,k)  and  !(n  +  0)  is  a  proof  of  PROOF(n  +  0,  k).  However,  !(n)  and 
!(n+0)  deliver  proofs  of  different  formulas,  thus,  generally  speaking,  !(n)  ^!(n+0). 

A  proof  predicate  is  a  provably  Ai-formula  Prf(x,y)  such  that  for  all  <p 

VA  b  <p  •$=$>  for  some  n  £  oj  Prf(n,  r(py)  holds. 

A  proof  predicate  Prf(x,y)  is  normal  if 

1)  for  every  proof  k  the  set  T(k)  =  {/  |  Prf  (k,  l) }  is  finite  and  the  function 

T(k )  =  the  code  ofT{k) 

is  provably  recursive, 

2)  for  every  finite  set  S  of  theorems  of  VA,  S  C  T(k)  for  some  proof  k. 

The  nondeterministic  proof  predicate  PROOF  (above)  is  a  normal  proof  predicate. 
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For  every  normal  proof  predicate  Prf  there  are  provably  recursive  terms  m(x,  y),  a(x,  y), 
c(x)  such  that  for  all  closed  recursive  terms  s,  t  and  for  all  arithmetical  formulas  <p,  if>  the 
following  formulas  are  valid: 

Prf(s,r<p^i>n)  A  Prf{t,r^)-^Prf{m(s,t),r^) 

Prf  (s, r  (p~*)  Prf  (a(s,  f),  VO,  Prf{t, r pV)  -4  Prf(a(s,  t),  V) 

Prf  (t, V)  ->  Prf(c(rn ,  rPr/(t,  VD • 

Let  SpeC  be  a  specification  of  constants.  An  arithmetical  SpeC-interpretation  *  of  CP- 
language  has  the  following  parameters:  SpeC,  a  normal  proof  predicate  Prf  an  evaluation  of 
sentence  letters  by  sentences  of  arithmetic,  an  evaluation  of  proof  letters  and  axiom  constants 
by  closed  recursive  terms.  We  put  T*  =  (0  =  0)  and  ±*  =  (0  =  1),*  commute  with 
boolean  connectives,  (t-s)*  =  m(t*,s*),  (t  +  s)*  =  a(t*,s*),  (!t)*  =  c^i*-1),  (|[tjF)*  = 

Prf(t*,  rF*n).  We  also  assume,  that  VA  h  G*  for  all  G  €  SpeC. 

Under  any  SpeC-interpretation  *  a  proof  polynomial  t  becomes  a  closed  recursive  term  t* 
(i.e.  a  recursive  name  of  a  natural  number),  and  an  >CP-formula  F  becomes  an  arithmetical 
sentence  F*.  In  what  follows  ” arithmetically  SpeC- valid”  means  either  ” provable  in  VA"  or 
’’true  in  the  standard  modal”  under  any  SpeC-interpretation. 

Note  that  the  reflexivity  principle  is  back,  since  p]F-)-F  is  provable  in  VA  under 
any  interpretation  *.  Indeed,  let  n  be  the  value  of  t* .  If  Prf(n,rF*~>)  is  true, 
then  VA  F*,  thus  VA  b  Prf(n,rF*n)  -»  F*.  If  Prf(n,rF*n)  is  false,  then 
VA  I — >Prf(n ,  rF*"1),  and  again  VA  h  Fr/(n,  rF*n)  — )-F*. 


4.1  Theorem.  ([2],  Arithmetical  completeness  of  CP) 

CVspeC  b  F  O  F*  is  arithmetically  SpeC-valid  . 

Combining  3.4  and  4.1,  we  obtain  the  arithmetical  completeness  of  S4: 

S4  b  F  «=>  Fr  is  arithmetically  valid  for  some 

realization  r  and  some  specification  of  constants  SpeC. 

Godel  in  [7]  defined  a  translation  tr  of  intuitionistic  formulas,  into  S4-formulas  where  tr(F) 
is  obtained  from  F  by  boxing  all  atoms  and  all  implications  in  F.  This  Godel  translation  is 
shown  ([7],  [11])  to  provide  a  faithful  embedding  of  Inf  into  S4.  The  proof  interpretation  of 
£P-polynomials  above  provides  a  faithful  proof  arithmetical  realization  of  Int: 

Int  b  F  [fr(F)]r  is  arithmetically  valid  for  some 

normal  realization  r  and  some  specification  of  constants  SpeC. 
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5  Functional  completeness  of  proof  polynomials 

We  recall  a  result  from  [2]  that  proof  polynomials  represent  all  absolute  propositional  opera¬ 
tions  on  proofs.  The  basic  operations  •, !,  +  thus  play  for  proofs  a  role  similar  to  that  boolean 
connectives  play  for  classical  logic. 

Consider  an  arbitrary  scheme  of  a  specification  of  an  operation  of  proofs  in  arithmetic. 
Such  a  specification  is  an  arithmetical  formula 

Vz  €  C  3y  “y  is  a  proof  of  G(x)  ”, 

or,  equivalently 

Vz(C(z)  -*  3y  “y  is  a  proof  of  G(x)”), 

true  in  the  standard  model  of  arithmetic,  where  C  and  G  are  arbitrary  arithmetical  conditions. 
A  propositional  specification  language  should  contain  tools  to  express  a  notion  “z  is  a  proof 
of  F”,  at  least  for  a  proof  variable  z.  Let  SL  be  a  language  with 

boolean  constants  T,  _L,  sentence  variables  po, . . .,  pn,  •  •  • 

proof  variables  xq,  . .  .,xn, . . . 

boolean  connectives 

operator  symbol  |ferm|  (formula). 

Note,  that  SL  is  a  fragment  of  the  language  of  CP  where  no  functions  are  presupposed.  The 
only  proof  terms  in  the  specification  language  are  the  proof  variables.  Now  we  can  make 
precise  the  following  question: 

what  absolute  operations  on  proofs  can  be  specified  by  a  propositional  language? 

To  answer  this  question  we  assume  that  C(x)  and  G(x)  are  conditions  in  the  specification 
language  SL.  Also,  we  express  the  existential  quantifier  By  “y  is  a  proof  of  G(x)”  by  the 
usual  provability  modality  □,  extending  the  definition  of  F*  by  one  more  item  :  (OF)*  is 
3z Fr/(z, r F*n),  i.e.  by  the  arithmetical  provability  predicate  associated  with  a  proof  predicate 
Pr/ from  an  interpretation  *. 

Finally  we  restrict  C‘s  to  “ positive ”  conditions,  i.e.  the  ones  where  the  outermost  subfor¬ 
mulas  [z]F  occur  positively. 

Indeed,  a  condition  of  the  sort 

-|[z|  P  -4  CH|[zjP, 

although  valid  for  any  proof  predicate,  may  hardly  be  accepted  as  a  specification 
of  an  operation  on  proofs  equally  as  good  as  •, !,  +,  because  it  derives  conclusions 
from  negative  information  about  proofs,  i.e.  from  “z  IS  NOT  a  proof  of  a  formula” . 

It  seems  that  now  we  have  found  a  balanced  definition  of  an  operation  on  proofs.  The  regular 
case 

[zjJC1!  A  ...  A  \xn\Cn  ^  OG', 
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which  comes  from  the  straightforward  formalization  of  the  notion  of  an  admissible  inference 
rule 

Ci, . . . ,  Cn 


G 


is  covered.  Further  shrinking  of  C  to  conjunctions  of  formulas  [xiJCi  A  ...  A  [xnJCn  only 
would  eliminate  natural  and  useful  nondeterministic  proof  systems. 


5.1  Definition.  We  may  define  now  an  absolute  propositional  operation  on  proofs  as  a 
formula  C  -*  □£?,  valid  under  all  arithmetical  interpretations,  where  C,  G  are  formulas  in 
the  specification  language  SL  and  C  is  positive. 


5.2  Comment.  Operations  •, !,  +  can  be  identified  as  absolute  propositional  operations  on 
proofs.  Indeed,  formulas 

fcxKF  -4  G)  A  [*2]  F-*UG 
[a;]F  ->  D|[x|  F 
[xxjF  V  [x2]F  — »•  OF 

are  valid  under  every  arithmetical  translation  and  Skolem  functions  for  the  existential  quan¬ 
tifiers  on  proofs  in  D’s  here  can  be  realized  by  m(xi,x 2),  c(x),  a(x i,x2)  from  Section  4 
correspondingly. 

The  following  theorem  from  ([2])  demonstrates  that  proof  polynomials  and  Logic  of  Proofs 
suffice  to  realize  any  absolute  propositional  operation  on  proofs. 

5.3  Theorem.  ([2])  For  any  abstract  propositional  operation  on  proofs  C  — f  OG  there  exists 
a  proof  polynomial  t  such  that 

CM  [t]  G 

is  derivable  in  the  Logic  of  Proofs ,  and  thus  arithmetically  valid. 


6  Proof  polynomials  vs.  Provability  Logic. 

The  Logic  of  Proofs  gives  a  formalization  of  the  arithmetical  provability  operator  different 
from  the  one  of  the  Provability  Logic.  In  a  certain  sense,  the  Logic  of  Proofs  introduces  a  new 
propositional  language  which  is  designed  to  get  rid  of  the  hidden  quantifiers  on  proofs.  The  in¬ 
tended  interpretation  of  a  formula  of  the  £P-language  gives  a  provably  decidable  arithmetical 
sentence,  provided  the  evaluations  of  the  propositions  are.  As  a  result,  there  is  do  direct  way 
to  interpret  the  Second  Godel  Incompletness  theorem  into  CP.  The  fixed  point  construction 
from  [2]  which  establishes  the  arithmetical  completeness  of  CP  is  totally  different  from  the 
one  used  by  R.  Solovay  in  his  proof  of  the  arithmetical  completeness  of  the  Provability  Logic 
(cf.  [4]).  However,  the  proof  polynomials  and  the  Provability  Logic  are  clearly  compatible;  in 
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[1]  in  the  proof  of  the  arithmetical  completeness  of  the  system  B  it  was  shown  how  to  build 
the  arithmetical  fixed  point  for  the  Logic  of  Proofs  (without  operations)  in  the  top  of  the 
Solovay  fixed  point. 

A  natural  problem  of  combining  proof  polynomials  with  formal  provability  operator  within 
one  logical  system  was  solved  recently  by  Tanya  Sidon  in  [13].  Along  with  usual  proof  poly¬ 
nomials  her  logic  contains  two  more  operations,  which  rise  in  connection  with  the  modality 
for  a  formal  provability. 

7  Proof  polynomials  vs.  Modal  Logic. 

By  3.4,  the  Logic  of  Proofs  is  a  version  of  54  presented  in  a  more  rich  operational  language, 
with  no  information  being  lost,  since  54  is  the  the  exact  term-forgetting  projection  of  CP. 
An  easy  inspection  of  the  realizing  algorithm  shows  that 

jC'P-fomula  =  54-formula  +  its  54-proof. 

A  transliretating  of  an  54-theorem  into  £"P-language  may  result  in  an  exponential  growth 
of  its  length.  However,  this  increase  looks  much  less  dramatic  if  we  calculate  the  complexity 
of  the  input  54-theorem  F  in  an  “honest”  way  as  the  length  of  a  proof  of  F  in  54:  the 
proof  polynomials  appearing  in  the  realization  algorithm  have  a  size  linear  of  the  length  of 
the  proof,  so,  the  total  length  of  an  ^^-realization  of  an  54-formula  F  is  bounded  by  the 
quadratic  function  of  the  length  of  a  given  54-proof  of  F. 

The  decomposition  of  the  54-modality  into  a  finitely  generated  set  of  proof  polynomials  is 
a  general  fact,  which  may  be  used  in  other  applications  of  the  modal  logic.  Similar  dynamic 
decompositions  of  the  modalities  could  be  done  for  some  other  major  modal  logics:  K,  K4, 
S5,  etc..  However,  54  is  the  one  which  corresponds  to  the  provability  reading  of  polynomials 
arising  from  this  dynamic  readings  of  the  modalities. 

8  Proof  polynomials  vs.  Intuit ionistic  logic. 

Kleene  recursive  realizability  (cf.  [14])  of  the  intuitionistic  language  does  not  use  the  logical 
provability  constraints  from  the  original  BHK  formulation  and  referes  to  all  recursive  func¬ 
tions,  not  just  operations  on  proofs.  As  a  result,  too  many  formulas  become  realizable,  more 
than  Xnt  can  derive: 

Xnt  C  Kleene  realizable  formulas1 . 

Proof  realizability  of  Xnt  can  be  defined  as  a  superposition  of  the  realizations  of  54  in  CP 
and  CP  in  the  arithmetic  (above);  Xnt  turns  out  to  be  complete  with  respect  to  the  proof 
realizability 

Xnt  =  proof  realizable  formulas. 
lUnless  a  metatheory  is  restricted,  cf.  [12]. 
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In  addition  to  the  general  algorithm  of  realization  of  54  in  CP  (3.4) ,  we  describe  now  its 
” light”  version,  which  realizes  Xnt  in  CP  directly. 

We  assume,  that  Xnt  is  presented  in  the  language  with  {A,  V,  _L}  and  recall,  that 
the  Godel  translation  of  an  Znt-formula  F  into  a  54-formula  tr(F)  consists  in  prefixing  all 
subformulas  in  F  by  □  (we  agree  to  skip  □  prefixes  of  _L).  Our  realization  algorithm  extends 
this  Godel  translation  to  jCP-formulas. 

We  consider  a  cut-free  sequential  formulation  of  54,  with  sequents  T  =>  A,  where  T  and 
A  are  multisets  of  modal  formulas.  Axioms  are  sequents  of  the  form  F  =>  F,  where  F  is  a 
formula.  Along  with  usual  structural  rules  and  rules  introducing  boolean  connectives  there 
are  two  proper  modal  rules 


A,T=>  A 
□A,T  =>  A 


(°=0 


and 


□r  =►  A 
□r  =*•  □  a 


(=►  a) 


(A  is  a  formula,  T,  A  -  multisets  of  formulas,  □{Ai, . . . ,  A„}  =  {dAi, . . . ,  dAn}). 


Step  1.  Take  a  sequential  cut-free  derivation  of  F  in  Xnt  with  the  axioms  “p  =>•  p”,  where  p  is 
a  propositional  letter,  and  “_L=>-  ” .  Replace  every  formula  G  in  this  derivation  by  its  Godel 
translation  tr(G).  The  resulting  tree  T  is  an  ”  almost”  54-derivation  of  tr(F)  with  the  axioms 
of  the  form  “dp  =>•  dp”  with  p  a  propositional  letter,  and  “1_=>  ”.  More  precisely,  every 
54-sequent  in  T  is  provable  in  54;  moreover,  each  step  down  in  T  can  be  regarded  as  a  cor¬ 
responding  standard  combination  of  54-rules,  excluding  Cut.  For  example,  the  intuitionistic 
rule 


A,r  =>•  b 


(=►-►) 


r  =►  a-+b 


will  be  presented  as 

dA',  dr'  =»  OB'  , 

- (=*►-+) 

dr'  =►  OA'->OB'  . 

- ( ^ 

□r'  =*•  d(dA'-fdB') 

Here  under  OF'  we  mean  a  Godel  translation  of  an  intuitionistic  formula  F.  Similarly,  all  other 
intuitionistic  rules  of  the  “introduction  to  the  right”,  and  only  them,  produce  a  combination 
of  54-rules,  which  contains  the  rule  (=»□).  Intuitionistic  axiom  sequents  “p  =£•  p”  become 
axiom  sequents  “dp  =>  dp” ,  axioms  “_L  remain  unchanged. 

All  the  following  steps  are  an  adoption  of  the  general  realizing  algorithm  of  54  into  CP 
for  T. 

Occurrences  of  d  in  T  are  related  if  they  occur  in  related  formulas  in  premises  and  con¬ 
clusions  of  nodes  in  T;  we  extend  this  relationship  by  transitivity.  All  occurrences  of  d  in  T 
are  now  naturally  split  into  disjoint  families  of  related  ones.  Since  polarities  of  the  d’s  are 
respected  in  T  we  may  speak  about  negative  and  positive  families  of  related  d’s.  Two  families 
are  close  if  they  contain  d’s  from  an  axiom  dp  =>  dp.  We  call  a  positive  family  essential  if 
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it  contains  at  least  one  □  introduced  by  the  (=>  □)  rule.  In  the  tree  T,  essential  □‘s  appear 
only  at  the  nodes,  corresponding  to  the  rules  of  introduction  to  the  succedent.  Since  all  d’s  at 
the  axiom  nodes  of  T  correspond  to  the  atomic  formulas,  there  are  no  essential  CPs  at  leaves 
(axiom  nodes).  The  basic  observation  here  is  that  no  negative  family  is  close  to  an  essential 
positive  family .  Indeed,  every  ( =>  D)-rule  introduces  a  prefix  □  to  a  composite  formula,  not 
a  sentence  letter. 

Step  2.  Realize  each  negative  family  and  each  nonessential  positive  family  by  a  fresh  proof 
variable,  realize  close  families  by  the  same  proof  variable. 

Step  3.  For  every  essential  positive  family  /  enumerate  all  the  nodes  where  the  principal  □ 
has  been  introduced,  and  let  nj  be  the  total  number  of  such  nodes  for  a  family  /.  Realize  all 
□  ’s  in  an  essential  positive  family  /  by  the  polynomial 

(wi  +  . . 

where  U{  s  are  fresh  proof  variables,  which  we  call  provisional  variables.  The  resulting  tree  is 
called  an  evaluated  tree . 

Step  4.  Perform  the  following  leaves-root  procedure  of  replacing  provisional  variables  by  proof 
polynomials,  which  will  result  in  the  desired  realization  r.  After  this  procedure  passes  a  node 
and  perform  corresponding  changes  of  the  labeling  sequent  T  =>  A,  we  will  have 

rh^A.  (t) 


The  case  of  an  axiom  node  dp  =>  Op  in  T,  is  trivial,  since  the  corresponding  /^-realization 
is  [x]p  =>  JxJp  for  some  proof  variable  x. 

At  the  nodes  of  the  evaluated  tree,  corresponding  to  the  introduction  to  the  antecedent 
rules,  we  don’t  perform  any  substitutions.  It  is  an  easy  exercise  in  a  propositional  logic  to 
verify,  that  the  property  (f)  is  respected. 

A  ( =$■  — >■)  node  in  the  evaluated  tree  looks  like 

|y]]A,  [xjT  =$>  ls]B 

fxjr  =r-  +  .  •  .+Wt'  +  -  •  — y  |[s|B) 

where  Ui  is  a  provisional  variable,  corresponding  to  this  particular  node.  By  the  induction 
hypothesis, 

MA,  [xjr  \-£p  [s]B. 

By  the  Deduction  rule  for  CP, 


[xjr  h-£-p  [y]A  -)•  {sjB, 
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and  by  Lifting,  there  exists  a  proof  polynomial  f(x)  such  that 

Pir  \-£p  Is!-®)- 

Substitute  everywhere  in  the  tree  t(x)  for  n,-.  Since  t(x)  does  not  contain  provisional  variables, 
m  is  no  longer  present  in  the  evaluated  tree.  By  the  substitution  lemma  the  property  (f) 
survives  for  all  sequents  in  the  tree.  Clearly, 

[5jr  lh+. .  .+t+. .  .+tn/]([y]A  Wfl). 

The  remaining  cases  of  (=*>  A)-nodes  and  (=>  V)-nodes  are  treated  similarly.  After  the 
process  reaches  the  root,  no  provisional  variables  remain  in  the  tree,  the  assignment  of  proof 
polynomials  to  the  D’s  in  the  root  sequent  is  the  desired  realization  of  this  sequent  in  CP. 

Since  an  Ini-formula  ip  may  be  identified  with  the  sequent  =$>  (p,  we  may  define  a  realizer 
of  v?  as  a  ground  proof  polynomial  r  realizing  the  sequent  =$■  p\  the  resulting  evaluated  tree 
will  then  have  the  root  =>  \f\p  for  some  IF-formula  p.  This  r  is  a  protocol  of  the  derivation 
of  =>  (f>. 

The  completeness  theorem  for  proof  realizations 

<p  is  provable  in  Xnt  <=>  p  is  proof  realizable 
follows  now  from  the  fairness  of  the  embeddings 

Xnt  «-»•  54  «-►  CP  Arithmetic. 


8.1  Example.  The  Inf-derivation 


A=>A 

B^B 

A  A\/B 

B  =>  A\/B  _L=^_L 

-.(AVB),A=*J. 

=>  J_ 

— i(A V B)  “i A 

-i(AV  B)  =$>  —iB 

-i(AV  B)  =$■  -iAA-iB 

produces  the  following  evaluated  tree  (we  use  t:F  instead  [f]F  to  simplify  the  picture): 
x:A=>x:A  y:B=>y:B 


x:  A  =>  ni+«2 :  (x:AVy:B)  ±=>J_  y:B  =$►  u\Au2'{x:A\/y:B)  -L=>JL 


z:-iui+U2’.(x:A\/y:B),x:A= =►  -L 

z:->ui+U2-(x:A\/y:B),y:B ^  J. 

z:-mi+U2:{x:AVy:B )  =4>  v:->  x:A 

z:^ui+u,2:{x:AVy:B)  w:-*y:B 

=>  p:  (v :  AAw :-iy : B) 
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Here  u\,U2,v,w,p  are  provisional  proof  variables  corresponding  to  all  four  essential  positive 
families  in  the  tree.  According  to  the  algorithm,  all  the  provisional  variables  will  be  evaluated 
by  polynomials  rising  from  the  lifting  lemma  used  at  the  corresponding  nodes. 

The  variable  u\  should  be  specified  at  the  node  labeled  by  the  sequent 

[xJA  =*•  [ui+«2](MAV|j/]B). 

For  that  we  apply  Lifting  to 

lx\A\-£p  IxJAvlyJB. 

In  this  particular  case  it  is  easy  to  write  down  a  polynomial  for  ui  explicitly.  Let  a  be  a  proof 
constant  satisfying 

•"£7?  M(|[a;JA  -¥  (|x]|AV[y]|.B)). 

Since  also 

|xJA  l-£p  [!*]||[a;]|A, 

we  have 

[xJA  =>  |a-!x|([a;]Av[j/]H), 

and  ui  should  be  evaluated  by  a-\x.  Similarly,  u2  should  be  evaluated  by  6-!y,  where  b  is  a 
proof  constant  specified  by  the  condition 

CJ>  [&](&]#  -»•  (W^V[ylfl)). 

To  find  a  polynomial  s(z)  for  v  consider  a  node  labeled  by 

|z]->|a!x+6!y]([a:|AV|[j/]B)  =$►  |u|->|[x]A. 

From  its  preceeding  sequent  we  have 

[z]-i|[a!a:-H>!y]  (|[xj  A  V  [yjH) ,  [xjA  h jyp  A., 

by  the  deduction  lemma,  we  get 

[z]-.|a!a;+h!yl([xlAV[y|H)  I -£p  -iffxJA, 

and  by  Lifting,  we  get's(z)  such  that 

[z]l-i|[a!x+6!yl(|[a;lAV|[y]H)  I -£-p  [s(z)J->|[a:]|A. 

Similarly,  we  evaluate  w  by  a  polynomial  r(z)  such  that 

|z] -i [a!x+6!yl  ( Ja;]l A V |[y]| B)  [r(z)]--|y]B. 

Finally,  the  provisional  variable  p  is  evaluated  by  a  polynomial  t(z)  such  that 

[zJ->[a!x+&!yl([®]AV|y]B)  V |t(z)]([u]-i|[x|AA|[ii;]-i|[ylB). 
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9  Proof  polynomials  vs.  typed  A-calculi. 

The  rule  of  the  A-abstraction  can  be  realized  as  an  admissible  rule  of  inference  in  the  Logic  of 
Proofs  (lemma  2.5).  This  shows  a  way  to  realize  the  entire  types  A-calculus  in  CP  by  emulating 
the  formation  rules  for  A-terms  by  the  corresponding  admissible  rules  in  CP.  This  realization 
gives  a  direct  arithmetical  provability  semantics  for  the  types  A-calculus.  A  straightforward 
combination  of  realization  algorithms  for  the  modal  logic  <S4  and  for  the  types  A-calculus  gives 
a  realization  procedure  for  the  modal  A-calculus  [3]. 
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